On Wed, 2 May 2001, Ben Nagy wrote:
> I was just testing some strange NAT stuff, and I noticed that both Windows
> NT4 and Linux (2.2.14) don't seem to care about source IP addresses for ICMP
> echo-replies.
Multi-homed hosts generally answer from the nearest (outbound routing
wise) interface. If this wasn't the case, the router would have to spoof
the source IP address of the internal interface on the external interface
despite the differing MAC addresses. I'm not sure that doesn't present
more long-term problems...
> Has anyone else noticed this? Is it just me, or is that a bizarre
> implementation choice? It certainly gave me the absolute "what the (*^(&???"
> heebie-jeebies.
It's a normal implementation choice for multihomed hosts, and I'd be
surprised if it wasn't covered in the specs somewhere...
Paul
-----------------------------------------------------------------------------
Paul D. Robertson "My statements in this message are personal opinions
[EMAIL PROTECTED] which may have no basis whatsoever in fact."
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
